https://db.gcve.eu/sightings/feed 2026-06-06T17:26:40.091805+00:00 Vulnerability-Lookup info@gcve.eu python-feedgen Contains only the most 10 recent sightings. https://db.gcve.eu/sighting/85075a99-e1e0-4df8-9fb8-88452ab03f05/export 2026-06-06T17:26:40.458859+00:00 cedric https://db.gcve.eu/user/cedric {"uuid": "85075a99-e1e0-4df8-9fb8-88452ab03f05", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-44464", "type": "seen", "source": "https://t.me/cibsecurity/36051", "content": "\u203c CVE-2021-44464 \u203c\n\nVigilant Software Suite (Mastermed Dashboard) version 2.0.1.3 contains service credentials likely to be common across all instances. An attacker in possession of the password may gain privileges on all installations of this software.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-01-21T22:13:48.000000Z"} 2022-01-21T22:13:48+00:00 https://db.gcve.eu/sighting/fe147fb5-3df5-4c60-b1f6-34faa17d483c/export 2026-06-06T17:26:40.458762+00:00 cedric https://db.gcve.eu/user/cedric {"uuid": "fe147fb5-3df5-4c60-b1f6-34faa17d483c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-44462", "type": "seen", "source": "https://t.me/cibsecurity/39571", "content": "\u203c CVE-2021-44462 \u203c\n\nThis vulnerability can be exploited by parsing maliciously crafted project files with Horner Automation Cscape EnvisionRV v4.50.3.1 and prior. The issues result from the lack of proper validation of user-supplied data, which can result in reads and writes past the end of allocated data structures. User interaction is required to exploit this vulnerability as an attacker must trick a valid user to open a malicious HMI project file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-25T21:36:53.000000Z"} 2022-03-25T21:36:53+00:00 https://db.gcve.eu/sighting/b0b90911-37f0-46e8-9eae-a6b0b3bed99e/export 2026-06-06T17:26:40.458673+00:00 cedric https://db.gcve.eu/user/cedric {"uuid": "b0b90911-37f0-46e8-9eae-a6b0b3bed99e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-44467", "type": "seen", "source": "https://t.me/cibsecurity/51992", "content": "\u203c CVE-2021-44467 \u203c\n\nA broken access control vulnerability in the KillDupUsr_func function of spx_restservice allows an attacker to arbitrarily terminate active sessions of other users, causing a Denial-of-Service (DoS) condition. This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-10-24T18:26:08.000000Z"} 2022-10-24T18:26:08+00:00 https://db.gcve.eu/sighting/76f8219d-7f9f-4d18-b3ac-726958d4a406/export 2026-06-06T17:26:40.458571+00:00 cedric https://db.gcve.eu/user/cedric {"uuid": "76f8219d-7f9f-4d18-b3ac-726958d4a406", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-44465", "type": "seen", "source": "https://t.me/cibsecurity/62838", "content": "\u203c CVE-2021-44465 \u203c\n\nImproper access control in Odoo Community 13.0 and earlier and Odoo Enterprise 13.0 and earlier allows authenticated attackers to subscribe to receive future notifications and comments related to arbitrary business records in the system, via crafted RPC requests.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-25T22:25:25.000000Z"} 2023-04-25T22:25:25+00:00 https://db.gcve.eu/sighting/7bbc8dc1-ed11-4189-bb8d-083fb3c27bd7/export 2026-06-06T17:26:40.458427+00:00 cedric https://db.gcve.eu/user/cedric {"uuid": "7bbc8dc1-ed11-4189-bb8d-083fb3c27bd7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-44464", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/12096", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2021-44464\n\ud83d\udd25 CVSS Score: 6.3 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L)\n\ud83d\udd39 Description: Vigilant Software Suite (Mastermed Dashboard) version 2.0.1.3 contains service credentials likely to be common across all instances. An attacker in possession of the password may gain privileges on all installations of this software.\n\ud83d\udccf Published: 2022-01-21T18:17:42.000Z\n\ud83d\udccf Modified: 2025-04-16T16:47:01.630Z\n\ud83d\udd17 References:\n1. https://www.cisa.gov/uscert/ics/advisories/icsma-21-355-01", "creation_timestamp": "2025-04-16T16:56:10.000000Z"} 2025-04-16T16:56:10+00:00 https://db.gcve.eu/sighting/410c0136-6a24-4ba1-9b36-98f7e47b90fe/export 2026-06-06T17:26:40.456110+00:00 cedric https://db.gcve.eu/user/cedric {"uuid": "410c0136-6a24-4ba1-9b36-98f7e47b90fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-44467", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/15350", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2021-44467\n\ud83d\udd25 CVSS Score: 5.3 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)\n\ud83d\udd39 Description: A broken access control vulnerability in the KillDupUsr_func function of spx_restservice allows an attacker to arbitrarily terminate active sessions of other users, causing a Denial-of-Service (DoS) condition, if an input parameter is correctly guessed. This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0.\n\ud83d\udccf Published: 2022-10-24T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-07T15:48:23.271Z\n\ud83d\udd17 References:\n1. https://www.nozominetworks.com/blog/vulnerabilities-in-bmc-firmware-affect-ot-iot-device-security-part-1/\n2. https://www.nozominetworks.com/labs/vulnerability-advisories/cve-2021-44467/", "creation_timestamp": "2025-05-07T16:23:30.000000Z"} 2025-05-07T16:23:30+00:00